$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: BvAUoGOCdYKgoX8OV3leb30h1cLcTpw+cnAk+UjC2do= Subject key identifier: 00:58:61:18:EF:16:4A:E4:EE:A7:A2:AD:82:75:E5:10:64:E4:CD:25 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 3B95A5BD383C71A33C6FFD0C22C36FAD5A9D1398 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02AD Signing time: Thu 08 May 2025 21:50:50 +0000 Manifest this update: Thu 08 May 2025 21:45:50 +0000 Manifest next update: Mon 12 May 2025 03:21:50 +0000 Files and hashes: 1: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: YAl9IH945cB6nzFZ+Qtu95xtcvqOant2/UNUilOSLzk=) 2: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: qa30id6FDEEWse5L01Ssz/J9LbRLUWtB87DSoH1f/A0=) 3: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: +t40M702VFWJpOgJRkFuplSndiJmUCoSc6okBYwiNSY=) 4: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: ejo3/L+3kmLyjnvdSLMOsbUtjtQhrjGsr2lCCkclPu4=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: Sr5rxwxyX//B5EAQxEl5R5AYvEEW7vDFWvwM/NlIUq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 03:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:95:a5:bd:38:3c:71:a3:3c:6f:fd:0c:22:c3:6f:ad:5a:9d:13:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: May 8 21:45:50 2025 GMT Not After : May 12 03:21:50 2025 GMT Subject: CN=00586118EF164AE4EEA7A2AD8275E51064E4CD25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e0:4f:94:ff:6e:2d:85:07:70:03:0c:36:3e: 9b:50:77:e8:51:28:b7:33:a7:d9:bc:34:15:3c:97: 3d:1b:61:87:d7:75:f2:0f:03:dd:45:2e:46:8d:29: 0f:e4:5f:b7:38:5b:fb:e8:4c:c2:a3:90:48:f2:9c: a9:6b:18:02:61:97:d1:72:97:03:75:1c:69:96:41: 3a:af:24:0e:17:11:fb:ea:41:00:1f:ec:a1:a5:7e: 10:c0:9f:0f:5b:77:8e:e1:7c:86:8c:65:7e:a8:78: 57:e3:3c:04:f2:50:86:ff:cd:23:b5:bc:9e:1b:7c: 07:97:47:8b:94:83:9f:a9:92:bd:f1:da:96:c5:bb: cb:26:e0:ec:5d:5c:78:b1:4a:f9:c7:41:cb:01:4e: 71:da:24:c5:36:79:b4:2d:d8:12:37:e7:17:73:f2: 87:8e:b8:ff:2f:88:cb:8e:97:f6:83:9b:09:59:81: 33:69:05:aa:c1:70:7a:0c:ff:73:ef:62:5d:42:98: aa:41:cd:d8:f1:80:6b:56:de:51:dd:67:be:4f:2a: e6:87:29:60:bb:5a:7c:db:52:1d:a6:43:2c:2c:b5: 72:82:20:20:7a:31:34:c7:a1:ee:c9:24:76:cf:28: 4c:73:32:23:ab:2d:f1:82:3c:71:d2:58:3f:25:d3: 5c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:58:61:18:EF:16:4A:E4:EE:A7:A2:AD:82:75:E5:10:64:E4:CD:25 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:4c:65:ce:14:13:fe:e2:1b:a5:96:7e:8c:93:ab:30:53:30: 64:9a:d7:4d:6d:85:c0:c6:7e:f6:71:5c:f3:dd:2f:05:72:ff: c3:72:23:f5:a4:1c:06:2d:71:9e:ea:7a:9f:7e:ca:84:98:7a: 49:ff:35:b6:0a:65:92:c6:30:24:38:e6:8f:1b:12:63:c6:eb: e1:57:47:f7:00:c4:88:38:e9:0b:e8:5e:87:c6:b2:e8:1b:2d: 0d:c1:3a:44:86:22:27:f2:95:6a:6a:62:be:83:20:b0:83:61: ac:31:61:4b:0b:1a:98:f2:cc:a1:92:c2:30:dd:0e:1e:3d:07: 7d:cc:03:f1:40:f5:0e:80:ee:8b:63:af:b4:74:65:19:60:ab: 64:8d:6d:78:43:b7:96:97:26:99:4e:f9:f5:cc:82:be:d3:9e: 8a:9c:e9:11:8d:64:bc:d0:f5:a3:62:cc:15:de:e1:85:74:cd: 18:32:e5:c3:7b:88:02:f5:79:21:56:6d:fa:da:4e:50:7a:ce: 5d:fa:78:f1:07:83:01:28:c9:24:5b:1e:bd:fc:c0:f8:e8:4b: b9:24:f4:98:9b:d7:6e:b1:04:a7:6d:36:5c:67:75:49:5a:83: c7:9e:13:87:d0:ad:22:dc:81:49:cf:33:60:cc:78:4b:5b:2d: 9b:6e:67:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO5WlvTg8caM8b/0MIsNvrVqdE5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA1MDgyMTQ1NTBaFw0yNTA1MTIwMzIxNTBaMDMxMTAvBgNV BAMTKDAwNTg2MTE4RUYxNjRBRTRFRUE3QTJBRDgyNzVFNTEwNjRFNENEMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC74E+U/24thQdwAww2PptQd+hR KLczp9m8NBU8lz0bYYfXdfIPA91FLkaNKQ/kX7c4W/voTMKjkEjynKlrGAJhl9Fy lwN1HGmWQTqvJA4XEfvqQQAf7KGlfhDAnw9bd47hfIaMZX6oeFfjPATyUIb/zSO1 vJ4bfAeXR4uUg5+pkr3x2pbFu8sm4OxdXHixSvnHQcsBTnHaJMU2ebQt2BI35xdz 8oeOuP8viMuOl/aDmwlZgTNpBarBcHoM/3PvYl1CmKpBzdjxgGtW3lHdZ75PKuaH KWC7WnzbUh2mQywstXKCICB6MTTHoe7JJHbPKExzMiOrLfGCPHHSWD8l01ybAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAFhhGO8WSuTup6KtgnXlEGTkzSUwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAJMZc4UE/7iG6WWfoyTqzBTMGSa101thcDG fvZxXPPdLwVy/8NyI/WkHAYtcZ7qep9+yoSYekn/NbYKZZLGMCQ45o8bEmPG6+FX R/cAxIg46QvoXofGsugbLQ3BOkSGIifylWpqYr6DILCDYawxYUsLGpjyzKGSwjDd Dh49B33MA/FA9Q6A7otjr7R0ZRlgq2SNbXhDt5aXJplO+fXMgr7Tnoqc6RGNZLzQ 9aNizBXe4YV0zRgy5cN7iAL1eSFWbfraTlB6zl36ePEHgwEoySRbHr38wPjoS7kk 9Jib126xBKdtNlxndUlag8eeE4fQrSLcgUnPM2DMeEtbLZtuZ9Q= -----END CERTIFICATE-----Generated at Sun May 11 01:20:39 2025 by rpki-client